bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows/dos/677.txt
Offensive Security d63de06c7a DB: 2022-11-10 
2776 changes to exploits/shellcodes/ghdb
2022-11-10 16:39:50 +00:00

27 lines
No EOL
799 B
Text
Raw Permalink Blame History

GetRight Skin File (*.grs) Buffer Overflow May Let Remote Users Run Arbitrary
Code
Application: GetRight
Headlight Software
www.getright.com
Author:
ATmaCA <atmaca@prohack.net>
a remote user can create a malicious skin file (*.grs) that, when loaded by the
target user, will trigger a buffer overflow in DUNZIP32.DLL (4.0.0.3) and
potentially execute arbitrary code.
AFFECTED VERSION:
Versions verified to be vulnerable:
GetRight 5.2a and prior versions are affected.
Solutions:
There was no response.
Exploit:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/677.grs (c_skin.grs)
When you copy or click this link, getright automaticly download and try to load
crafted skin and will trigger buffer overflow
# milw0rm.com [2004-12-06]
Reference in a new issue View git blame Copy permalink